Monday, May 31, 2010

Fiddler XSRF Inspector Released


Fiddler XSRF Inspector is a plugin for Fiddler 2 that extracts cross-site request forgery attacks from HTTP requests.



Installation
Copy FiddlerXSRF.dll to the Fiddler 2 Inspectors folder, generally %ProgramFiles%\Fiddler2\Inspectors

Instructions
-Capture the request that is going to be used to create a cross-site request forgery attack.
-Navigate to the XSRF tab under inspectors to see the generated HTML. If the request uses the POST method, the option to convert it to GET will be available.
-Click the Test button and observe the results.

Download: http://sourceforge.net

No comments: